Skip to content

Pull requests: github/advisory-database

New pull request New
25 Open 2,955 Closed
25 Open 2,955 Closed
Author
Filter by author
Label
Filter by label
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Milestones
Filter by milestone
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Pull requests list

[GHSA-c24v-8rfc-w8vw] Vite dev server option server.fs.deny can be bypassed when hosted on case-insensitive filesystem
#3305 opened Jan 21, 2024 by Siphelwazimntungwa Loading…
7
[GHSA-664q-mrxx-2x2v] Moodle 2.x through 2.1.10, 2.2.x before 2.2.8, 2.3.x...
#3304 opened Jan 20, 2024 by MarkLee131 Loading…
[GHSA-cc94-hwj3-rf65] Moodle 2.x through 2.1.10, 2.2.x before 2.2.8, 2.3.x...
#3303 opened Jan 20, 2024 by MarkLee131 Loading…
[GHSA-prrh-679x-79qh] notes/edit.php in Moodle 1.9.x through 1.9.19, 2.x...
#3302 opened Jan 20, 2024 by MarkLee131 Loading…
[GHSA-89f3-74m6-g27g] Moodle Multiple cross-site scripting (XSS) vulnerabilities in the File Picker module
#3301 opened Jan 20, 2024 by MarkLee131 Loading…
[GHSA-pgp5-rcwp-qvfg] repository/webdav/lib.php in Moodle 2.x through 2.1.10, 2...
#3300 opened Jan 20, 2024 by MarkLee131 Loading…
[GHSA-xr24-jp5c-6c4v] lib/setuplib.php in Moodle through 2.1.10, 2.2.x before 2...
#3299 opened Jan 20, 2024 by MarkLee131 Loading…
[GHSA-7mvr-5x2g-wfc8] Bootstrap Cross-site Scripting vulnerability
#3297 opened Jan 19, 2024 by 1Jesper1 Loading…
2
[GHSA-98g6-xh36-x2p7] Microsoft.Data.SqlClient and System.Data.SqlClient vulnerable to SQL Data Provider Security Feature Bypass
#3291 opened Jan 17, 2024 by Mike-Harwood Loading…
1
[GHSA-5wj4-wffq-3378] Ingress nginx annotation injection causes arbitrary command execution
#3287 opened Jan 15, 2024 by r0binak Loading…
1
[GHSA-3wqf-4x89-9g79] Bootstrap vulnerable to Cross-Site Scripting (XSS)
#3282 opened Jan 13, 2024 by jenhae Loading…
12
[GHSA-733r-8xcp-w9mr] Flarum's logout Route allows open redirects
#3271 opened Jan 6, 2024 by ErArif01 Loading…
3
[GHSA-7c44-7j7v-w554] Buildkite Elastic CI for AWS symbolic link following vulnerability
#3265 opened Jan 4, 2024 by leifdreizler Loading…
[GHSA-r5hg-349q-mg2q] Buildkite Elastic CI for AWS time-of-check-time-of-use race condition vulnerability
#3264 opened Jan 4, 2024 by leifdreizler Loading…
1
[GHSA-67hx-6x53-jw92] Babel vulnerable to arbitrary code execution when compiling specifically crafted malicious code
#3258 opened Jan 3, 2024 by SAEED2ALAHMARI Loading…
1
[GHSA-m7xj-ccqc-p4g2] Directory traversal vulnerability in Apache Tomcat 4.1.0...
#3251 opened Jan 2, 2024 by sunSUNQ Loading…
5
[GHSA-5c5p-jxvx-x7j2] Multiple cross-site scripting (XSS) vulnerabilities in...
#3248 opened Jan 2, 2024 by sunSUNQ Loading…
5
[GHSA-9699-fmx5-wvpf] The vulnerability allows attackers to bypass...
#3228 opened Dec 29, 2023 by loganaden Loading…
1
[GHSA-jcxc-mh25-387r] Multiple cross-site scripting (XSS) vulnerabilities in...
#3219 opened Dec 28, 2023 by q5438722 Loading…
5
[GHSA-pg6w-hq9f-wfwr] resumable.php (aka PHP backend for resumable.js) 0.1.4...
#3214 opened Dec 27, 2023 by williamdes Loading…
5
[GHSA-q79q-94j7-5mgg] Dozer improperly uses a reflection-based approach to type...
#3206 opened Dec 26, 2023 by q5438722 Loading…
2
[GHSA-4m48-j3xj-px27] MyBatis plus v3.4.3 was discovered to contain a SQL...
#3204 opened Dec 26, 2023 by q5438722 Loading…
2
[GHSA-72w2-j52c-7682] Moodle SQL Injection vulnerability
#3141 opened Dec 22, 2023 by dirtycoins Loading…
1
[GHSA-c3hf-8vgx-72rh] Microsoft Security Advisory CVE-2023-36049: .NET Elevation of Privilege Vulnerability
#3129 opened Dec 21, 2023 by zdfowler Loading…
4
[GHSA-h3qr-39j9-4r5v] Data written to GitHub Actions Cache may expose secrets
#3078 opened Dec 18, 2023 by dloetzke Loading…
4
ProTip! Mix and match filters to narrow down what you’re looking for.